Blog

Security is at the forefront of everybody's mind. You walk through the airport, you see cybersecurity. You install apps on...

This post comes as a result of a conversation between Tyler Shields, VP Strategy of Sonatype and myself.   The...

Earlier this month, Talos released research showing that the Alpine Linux docker images were shipping with no (or nulled) root...

UPDATE 20190604: The NSA is now urging organizations to patch. UPDATE 20190604: Notice of a functional, private MSF module posted...

It’s no secret that application security professionals face an uphill battle as they attempt to influence development teams to remediate...

Zero-days vulnerabilities are unknown vulnerabilities. The exact definition is that they are vulnerabilities that have not been released to the...

I’ve been talking about the benefits of adopting a risk-based approach to vulnerability management (VM) for some time now. Since...

Despite the growing importance of application security in organizations of all sizes, most face an increasing number of challenges to...

John Morin, Customer Success Manager, Kenna Security Let’s face it, vulnerability management is challenging. Larger companies can have tens of...

Last week, more than 40,000 security professionals packed the relatively small city of San Francisco for the annual RSA Conference...